Product Research Enterprise Plans Docs

PyPi: Django-Mptt

CVE-2015-0222

Transitive

Safety vulnerability ID: 49764

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Jan 16, 2015 Updated at Jan 16, 2024

Scan your Python projects for vulnerabilities →

Advisory

Django-mptt 0.8.0 drops support for Django versions <1.8. They no longer receive security patches.

Affected package

django-mptt

Latest version: 0.16.0

Utilities for implementing Modified Preorder Tree Traversal with your Django Models and working with trees of Model instances.

Affected versions

Fixed versions

Vulnerability changelog

=====

Dropped support for old Django versions and Python 2.6
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Unsupported versions of django (1.4, 1.5, 1.6, 1.7) are no longer supported, and Python 2.6 is no longer supported.

These versions of python/django no longer receive security patches. You should upgrade to Python 2.7 and Django 1.8+.

Django 1.9 support has been added.

Resources

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0222

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application

Severity Details

CVSS Base Score

MEDIUM 5.0

CVSS v2 Details

MEDIUM 5.0

Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (Au): NONE
Confidentiality Impact (C): NONE
Integrity Impact (I): NONE
Availability Impact (A): PARTIAL